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EXAMINER'S AMENDMENT 

1 . An examiner's amendment to the record appears below. Should the changes 
and/or additions be unacceptable to applicant, an amendment may be filed as provided 
by 37 CFR 1 .312. To ensure consideration of such an amendment, it MUST be 
submitted no later than the payment of the issue fee. 

2. Authorization for this examiner's amendment was given in a telephone interview 
with Matthew Pinckney (62,727) on 1 1/09/2010. 

Amendments to the Claims 

1 . (Currently Amended) A system for providing security for an Internet server, 

comprising: 

a logical security system for processing login and password data received from a 
client device during a server session with the Internet server in order to authenticate a 
logged in user; 

a physical security system for processing Internet protocol (IP) address 
information of the client device at the Internet server in order to authenticate the client 
device for the duration of the server session; and 

a memory system for storing, at the Internet server, a list of each logged in user 
and a reference IP address collected during a login procedure, wherein the logical 
security system is configured to access the list to authenticate the logged in user, and 
wherein the physical security system is configured to separately access the list in order 
to authenticate the client device; 
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wherein the physical security system includes a proxy server module for 
comparing only an incomplete portion of an IP address obtained from a received 
message against only a like incomplete portion of the reference IP address for the 
logged in user; 

wherein the physical security system further performs the following: 

terminates the session for the user if the incomplete portion of the IP 
address obtained from the received message does not match the like incomplete 
portion of the reference IP address for the logged in user: and 

deletes all instances of the logged in user from the stored list if the 
incomplete portion of the IP address obtained from the received message does 
not match the like incomplete portion of the reference IP address for the logged 
in user . 

4-5. (Cancelled). 

7. (Currently Amended) A method of authenticating a user accessing an Internet 
server, comprising: 

storing in a memory system, at the Internet server, a reference Internet protocol 
(IP) address and associated login data whenever a new server session is initiated on 
the Internet server from a client device; 

receiving a message from a requesting user at the Internet server; 

obtaining login data accompanying the message; 



Application/Control Number: 10/667,852 Page 4 

Art Unit: 2439 

obtaining an IP address from a message header in the message; 

determining if the login data of the requesting user is currently listed in the 
memory system as an existing session with the Internet server; [[and]] 

if the login data of the requesting user is currently listed, determining at the 
Internet server if the IP address from the received message matches the reference IP 
address associated with the login data of the requesting user, the determining of the IP 
address including examining only an incomplete portion of the IP address of the 
requesting user and determining if the incomplete portion matches only a like 
incomplete portion of the reference IP address; 

terminating all server sessions listed in the memory system having the login data 
of the requesting user if the incomplete portion of the IP address from the obtained 
message does not match the like incomplete portion of the reference IP address: and 

deleting all instances of the requesting user from the list in the memory system if 
the incomplete portion of the IP address obtained from the received message does not 
match the like incomplete portion of the reference IP address . 

8. (Original) The method of claim 7, comprising the further step of initiating a login 
procedure if the login data of the requesting user is not currently listed in the memory 
system. 



9. (Cancelled) 
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1 1 . (Currently Amended) A program product stored on a non-transitory recordable 
medium for providing security for an Internet server, the program product comprising: 

a component for processing logical security information received from a client 
device during a server session in order to authenticate a logged in user; 

a component for processing Internet protocol (IP) address information of the 
client device in order to authenticate the client device during the server session by 
comparing the IP address of a received message against the list of IP addresses stored 
by the server; and 

a component for storing, at the Internet server, a list of each logged in user and a 
respective reference IP address collected during a login procedure, wherein the 
component for processing logical security information is configured to access the list to 
authenticate the logged in user, and wherein the component for processing IP address 
information is configured to separately access the list to authenticate the client device; 

wherein the component for processing IP address information includes a proxy 
server module for comparing only an incomplete portion of an IP address obtained from 
a received message against only a like incomplete portion of the reference IP address 
for the logged in user; 

wherein the component for processing IP address information further performs 
the following: 

terminates the session for the user if the incomplete portion of the IP 
address obtained from the received message does not match the like incomplete 
portion of the reference IP address for the logged in user stored in the list; and 
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deletes all instances of the logged in user from the stored list if the 
incomplete portion of the IP address obtained from the received message does 
not match the like incomplete portion of the respective reference IP address for 
the logged in user . 

14-15. (Cancelled) 

DETAILED ACTION 

Claims 1,7,8,11 and 1 7 - 22 are pending. 

Allowable Subject Matter 

3. Claims 1 , 7, 8, 1 1 and 1 7 - 22 are allowable. 

Reasons for Allowance 

4. The following is an examiner's statement of reasons for allowance: 

5. In reference to claims 1 , 7 and 11 . 

6. Ramachandran in combination with Hay and Barnes, fail to teach deleting all 
instances of the requesting user from the list in the memory system if the incomplete 
portion of the IP address obtained from the received message does not match the like 
incomplete portion of the reference IP address. 
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7. Each independent claim identifies the distinct feature of sending of deleting all 
instances of the requesting user from the list in the memory system if the incomplete 
portion of the IP address obtained from the received message does not match the like 
incomplete portion of the reference IP address. The closest prior art, Muratov U.S. PG- 
Publication No. (2003/0097596) teaches just deleting RAM from a PDA but not based 
on a portion of an IP address not matching. Further, Muratov teaches the deletion of 
the entire RAM however, the claim language only recites the deletion of the of a certain 
logged on user. The cited prior art fails to teach all the limitations contained in this 
limitation "deleting all instances of a requesting user from the list in the memory system 
if the incomplete portion of the IP address obtained from the received message does 
not match the like incomplete portion of the reference IP address," and has thus been 
deemed to be allowable subject matter. 

8. Any comments considered necessary by applicant must be submitted no later 
than the payment of the issue fee and, to avoid processing delays, should preferably 
accompany the issue fee. Such submissions should be clearly labeled "Comments on 
Statement of Reasons for Allowance. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Roderick Tolentino whose telephone number is (571) 
272-2661 . The examiner can normally be reached on Monday - Friday 9am to 5pm. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Edan Orgad can be reached on (571 ) 272-381 1 . The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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